$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146240.roa File: AS146240.roa (raw, json) Hash identifier: b/O4iOTbNMYjSBf1WW48m+wGrqQuzdYh86+zCyzrxhg= Subject key identifier: DB:0E:02:A1:C9:B4:4E:28:6A:EF:F7:E6:ED:AE:AC:96:58:B9:4D:DD Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 230958F0F87D4B31C1944615F294B330CA879254 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146240.roa Signing time: Wed 04 Mar 2026 06:34:49 +0000 ROA not before: Wed 04 Mar 2026 06:29:49 +0000 ROA not after: Wed 03 Mar 2027 06:34:49 +0000 asID: 146240 IP address blocks: 240a:ae06::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:09:58:f0:f8:7d:4b:31:c1:94:46:15:f2:94:b3:30:ca:87:92:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:49 2026 GMT Not After : Mar 3 06:34:49 2027 GMT Subject: CN=DB0E02A1C9B44E286AEFF7E6EDAEAC9658B94DDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d2:00:23:19:cc:7f:c4:a2:66:c5:93:ad:7a: 96:5e:55:2c:b8:5c:e1:03:bd:ab:26:23:f2:dd:69: 84:83:36:58:0c:f8:fe:ac:43:db:49:eb:98:12:a4: 9a:45:3e:1b:4b:93:8b:ad:23:e1:6c:92:08:64:cb: 81:e6:61:42:c0:d2:32:60:e5:42:db:77:c2:94:90: 95:01:fd:23:72:b2:ea:ac:59:b0:2b:2b:a4:3b:90: a3:00:31:24:db:ac:82:dd:5d:33:f4:6b:dc:67:fa: ee:d2:94:0c:d6:14:db:21:70:68:f0:bf:7e:95:9a: 89:55:bb:2f:4c:2b:f8:a9:2a:f1:21:52:cb:6b:c1: 93:e5:84:f4:1d:4e:16:4c:97:3c:ef:0c:ef:91:94: bb:74:59:fd:d5:dd:ca:49:ab:e3:55:69:0d:99:32: 93:8a:bf:4b:56:1d:68:f1:35:f7:e4:4f:47:96:f3: a7:f1:03:4c:a3:7a:5d:92:bf:a0:d4:2b:ee:98:cd: 1f:ba:67:3c:65:0b:68:62:b8:7d:44:d6:a1:74:c5: c1:84:1c:c6:08:a5:25:36:88:ba:c7:a3:76:9f:f7: 61:cb:16:91:79:c2:2b:0e:b5:d8:85:fd:15:3e:9a: db:de:86:ad:c5:f2:6c:1e:e7:4b:e9:64:b7:37:20: da:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:0E:02:A1:C9:B4:4E:28:6A:EF:F7:E6:ED:AE:AC:96:58:B9:4D:DD X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146240.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ae06::/32 Signature Algorithm: sha256WithRSAEncryption 3c:41:51:5c:0f:e3:12:0c:a7:0d:04:20:dd:a9:4c:9d:63:7a: ed:26:5e:8f:6c:88:48:53:3a:ca:20:ee:72:ab:9a:20:19:a7: 46:7c:a4:cb:7e:f3:9d:eb:b0:3a:0b:6b:01:3b:34:67:17:28: e4:e6:34:7d:96:4b:1d:b4:9a:c8:85:6d:76:2b:6a:7f:81:90: d8:58:a8:05:fd:22:99:53:af:e0:93:fa:5b:79:9e:77:b6:02: b8:a6:c1:b8:80:ef:0c:e6:45:ff:23:66:b1:33:50:a0:8f:b7: a3:ee:b6:69:6f:1b:e0:86:8e:6b:c3:92:99:db:37:5e:2b:0d: 4b:f0:84:b8:7d:02:8f:60:74:81:5f:0b:69:05:e5:46:a1:7c: 03:37:5c:a9:d6:7d:73:e0:32:8f:8b:75:c7:4b:d9:40:a9:c0: 68:98:78:1e:e2:22:57:27:1a:f9:cb:f7:05:5e:4f:1a:91:34: 28:e9:89:2b:d4:c5:cf:da:0f:9b:7b:c2:50:d6:3c:f6:fe:61: bb:1d:f2:2f:98:aa:5a:1e:51:82:00:5a:cf:e3:df:7b:4e:c4: 97:0d:c0:9a:c7:ca:13:ce:e4:28:da:81:68:1a:3a:64:c7:52: 19:d3:a4:6e:f3:92:1c:a7:2f:d7:6d:b0:9a:22:8e:0f:3f:a3: d8:bd:94:26 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUIwlY8Ph9SzHBlEYV8pSzMMqHklQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjk0OVoX DTI3MDMwMzA2MzQ0OVowMzExMC8GA1UEAxMoREIwRTAyQTFDOUI0NEUyODZBRUZG N0U2RURBRUFDOTY1OEI5NERERDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKvSACMZzH/EombFk616ll5VLLhc4QO9qyYj8t1phIM2WAz4/qxD20nrmBKk mkU+G0uTi60j4WySCGTLgeZhQsDSMmDlQtt3wpSQlQH9I3Ky6qxZsCsrpDuQowAx JNusgt1dM/Rr3Gf67tKUDNYU2yFwaPC/fpWaiVW7L0wr+Kkq8SFSy2vBk+WE9B1O FkyXPO8M75GUu3RZ/dXdykmr41VpDZkyk4q/S1YdaPE19+RPR5bzp/EDTKN6XZK/ oNQr7pjNH7pnPGULaGK4fUTWoXTFwYQcxgilJTaIusejdp/3YcsWkXnCKw612IX9 FT6a296GrcXybB7nS+lktzcg2v8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTbDgKh ybROKGrv9+btrqyWWLlN3TAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjI0MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rgYwDQYJKoZIhvcNAQELBQADggEBADxBUVwP4xIMpw0EIN2pTJ1jeu0mXo9siEhT Osog7nKrmiAZp0Z8pMt+853rsDoLawE7NGcXKOTmNH2WSx20msiFbXYran+BkNhY qAX9IplTr+CT+lt5nne2ArimwbiA7wzmRf8jZrEzUKCPt6PutmlvG+CGjmvDkpnb N14rDUvwhLh9Ao9gdIFfC2kF5UahfAM3XKnWfXPgMo+LdcdL2UCpwGiYeB7iIlcn GvnL9wVeTxqRNCjpiSvUxc/aD5t7wlDWPPb+Ybsd8i+YqloeUYIAWs/j33tOxJcN wJrHyhPO5CjagWgaOmTHUhnTpG7zkhynL9dtsJoijg8/o9i9lCY= -----END CERTIFICATE-----Generated at Sat Mar 28 13:13:21 2026 by rpki-client